CVE-2021-47036

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 28, 2024

Updated: Jan 10, 2025

Summary

CVE-2021-47036 is a vulnerability affecting the Linux kernel that could lead to protocol corruption when NETIF_F_GRO_FRAGLIST or NETIF_F_GRO_UDP_FWD are enabled and UDP tunnels are available in the system. The issue occurs when udp_gro_receive() performs L4 aggregation at the outer UDP tunnel level, causing inner protocol headers to be ignored and leading to unexpected behavior. To mitigate this issue, the patch skips the SKB_GSO_UDP_L4 and SKB_GSO_FRAGLIST code path for packets that could land in a UDP tunnel and instead lets udp_gro_receive() handle GRO via udp_sk(sk)->gro_receive. However, the check implemented in the patch is broader than necessary, potentially disabling GRO for some packets unnecessarily. The commit message could be clarified in the update to version 2.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners